CVE-2023-53038

Description

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Check kzalloc() in lpfc_sli4_cgn_params_read() If kzalloc() fails in lpfc_sli4_cgn_params_read(), then we rely on lpfc_read_object()'s routine to NULL check pdata. Currently, an early return error is thrown from lpfc_read_object() to protect us from NULL ptr dereference, but the errno code is -ENODEV. Change the errno code to a more appropriate -ENOMEM.

Reserved 2025-04-16 | Published 2025-05-02 | Updated 2025-05-04 | Assigner Linux

Product status

Default status
unaffected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 67b8343998b84418bc5b5206aa01fe9b461a80ef
affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 4829a1e1171536978b240a1438789c2e4d5c9715
affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 908dd9a0853a88155a5a36018c7e2b32ccf20379
affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 312320b0e0ec21249a17645683fe5304d796aec1
affected

Default status
affected

5.15.105
unaffected

6.1.22
unaffected

6.2.9
unaffected

6.3
unaffected

References

git.kernel.org/...c/67b8343998b84418bc5b5206aa01fe9b461a80ef

git.kernel.org/...c/4829a1e1171536978b240a1438789c2e4d5c9715

git.kernel.org/...c/908dd9a0853a88155a5a36018c7e2b32ccf20379

git.kernel.org/...c/312320b0e0ec21249a17645683fe5304d796aec1

cve.org (CVE-2023-53038)

nvd.nist.gov (CVE-2023-53038)

Download JSON